Rule #1, DO NOT, I repeat, DO NOT use the same password or a variation of that password for all the sites you log into. Once a hacker has that password, they can make a mess of every area of your digital life from email to online banking to social media.
Rule #2, DO NOT use names or real words found in the dictionary. A password cracking program is a tool that runs through a list of possible passwords, one-by-one, until it hits on the right combination; it can process tens of thousands of different passwords in one second. The list of possible passwords the program uses can include commonly used passwords, dictionary words, and information specific to you, such as your birth date so try to avoid these.
Rule #3, The longer the password the better. Use the maximum length that each website will allow.
Here's an example of the type of password you should be using (no this is not one of mine so you won't get anywhere with it.):
y?c;FPp/_zrcy&Y)v9r%Agk`DVh6D[ti
Ok, now I know what you're thinking: "I can't possibly remember a password like that much less having a different one of those for each site?" I've got great news for you, you don't have to. There are several reputable, secure online password management sites that can take care of that for you. All you have to do is copy and paste from one of those sites and you only have to remember one master password to get into the management site. Popular sites include, LastPass, Dashlane, Passpack, 1Password, Roboform and there are others. And most of them have a suggestion tool that can generate a password like the one above. Some also come with a backup procedure to keep those passwords always accessible.
So how do I create a secure master password if I chose to use one of these sites? You're asking some great questions here. One strategy is to use passwords that are built from easily remembered phrases. You take the first letters from each of the words in the phrase, and you also mix in some symbols and numbers in place of certain words, like using & to replace “and.”
Here are a few examples of strong passwords built on phrases:
- M2010nyri2l15# (“My 2010 new year’s resolution is to lose 15 pounds”)
- Lmu?i:Wayd4o? (“Life’s most urgent question is: What are you doing for others?”)
- Iw2Tls&cw2gb! (“I went to Texas last summer and can’t wait to go back!”)
Remember, security vs. convenience. It's a hard choice, but the more convenience you give up, the more secure you will be online and less likely to fall victim to a hacker.